Update on React Server Components RCE Vulnerability (CVE-2025-55182 / CVE-2025-66478)

The attack landscape has been dynamic following the disclosure of the React Server Components RCE vulnerability. New information has emerged regarding the initial Proof-of-Concept exploit, as well as improved detection methods, exploitation mechanics observed in the wild, and rapidly growing atta...

Exploit for Deserialization of Untrusted Data in Spip

CVE-2023-27372 SPIP -v -o report.txt 🔍 Reconnaissance M...

Python Utility Bot 安全漏洞

Python Utility Bot is a community bot developed specifically for the Discord community. A security vulnerability exists in Python Utility Bot that stems from a token filter not triggering when an un-blacklisted URL and a trigger filter token are included in the same message in the affected versio...

Partner Perspectives: Using Cb Response to Mitigate ETERNALBLUE

Editor's Note: This post originally appeared on redcanary.com In case you’ve been under a rock, there’s a wee problem with ransomware, fueled by the public release of a handful of high quality access exploit and persistence backdoor utilities. Most recently, these have manifested in the form of t...

scanless - Public Port Scan Scrapper

Command-line utility for using websites that can perform port scans on your behalf. Useful for early stages of a penetration test or if you'd like to run a port scan on a host and have it not come from your IP address. scanless adj: lacking respectable morals. That girl is scanless! Public Port...